[Secure-testing-commits] r30056 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Nov 14 07:18:19 UTC 2014


Author: carnil
Date: 2014-11-14 07:18:19 +0000 (Fri, 14 Nov 2014)
New Revision: 30056

Modified:
   data/CVE/list
Log:
Add reference for CVE-2014-8090

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-14 07:17:10 UTC (rev 30055)
+++ data/CVE/list	2014-11-14 07:18:19 UTC (rev 30056)
@@ -1290,6 +1290,7 @@
 	- ruby2.1 <unfixed>
 	NOTE: As it is for the incomplete fix for CVE-2014-8090 might only apply to ruby2.1
 	NOTE: which already had an update.
+	NOTE: https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/
 	TODO: check, see CVE-2014-8080
 CVE-2014-8087
 	RESERVED




More information about the Secure-testing-commits mailing list